pfSense Security Vulnerabilities: Discovery & Demonstration on test Instance with SonarCloud
pfSense is a popular open-source firewall solution by Netgate and is sold as pfSense Plus installed on ready-made firewall appliances to protect and manage office networks and also distributed for free as the pfSense Community Edition (CE). SonarCloud found these vulnerabilities using taint analysis. pfSense CE 2.7.0 and below, pfSense Plus 23.05.1 and below are vulnerable to two XSS vulnerabilities and a Command Injection vulnerability (CVE-2023-42325, CVE-2023-42327, CVE-2023-42326).
The security vulnerabilities are fixed in pfSense CE 2.7.1 and pfSense Plus 23.09.
View the comprehensive security vulnerabilities impact, technical details, timeline and patches on our blog post: https://sonarsource.com/blog/pfsense-...
Also visit Sonar's SAST Solution: https://www.sonarsource.com/solutions...
Follow us on socials for more developer tips & tricks:
/ sonarsource
/ sonarsource
Watch video pfSense Security Vulnerabilities: Discovery & Demonstration on test Instance with SonarCloud online without registration, duration hours minute second in high quality. This video was added by user Sonar 12 December 2023, don't forget to share it with your friends and acquaintances, it has been viewed on our site 1,804 once and liked it like people.